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DETAILED ACTION 
Response to Amendment 

This office action is in response to request for reconsideration filed on 4/29/04 (Paper No. 
15). Original application contained Claims 1-77. The request for reconsideration filed on 
4/29/04 have been entered and made of record Therefore, presently pending claims are 1-77. 

Response to Arguments 

Applicant's arguments filed 4/29/04 have been fully considered but they are not 
persuasive because of following reasons. 

Applicant argued, "Barr does not calculate a cryptographic hash of an operating system". 
This is not found persuasive. The office action Paper No. 14 did not assert that Barr calculates a 
cryptographic hash of an operating system. Instead Arbaugh discloses a system that verifies the 
kernel (operating system) by calculating the cryptographic hash of the operating system level 
(page 4 section 3.2. 1 paragraph 2 in combination with section 3.2.2 paragraph 4). It would be 
obvious to perform the teachings of Arbaugh in the system of Barr because Arbaugh is a system 
used for bootstrap process that is concerned with increasing the security of the bootstrap process. 
The system of Barr is concerned with a remote boot process. The combination of Arbaugh and 
Barr would result in an increasingly secure system because the Barr authenticates the server 
before receiving the files for the boot process adding the teachings of Arbaugh of calculating the 
hash of the kernel (operating system) would ensure that the files received, from the server, have 
not been altered. 

The applicant disagrees with the assertion that it would be obvious to store the result of a 
computed cryptographic function in the hash table as in Angelo in the system of Barr. The 
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applicant disagrees because the software registration occurs after an operating system is booted 
This is not found persuasive. The system of Angelo is used for the verification of software. 
Operating systems or boot systems are also software. Angelo teaches the calculation of the hash 
values of software as well as the Power on Self Test (column 4 lines 36-45), which is desirable 
because the hash value enables the user to validate the software and prevent malicious software 
from being executed. 

The examiner asserts that the prior art does teach or suggest the subject matter broadly 
recited in independent Claims 1, 3, 1 1, 19, 22, 32, 35, 42, 43, 52, 53, 54, 55, 56, 69, 73, and 76. 
Dependent are also rejected at least by virtue of their dependency on independent claims and by 
other reason set forth in this office action (Paper No. 16). For further details the applicant is 
directed to the rejection below. 

Claim Rejections - 35 USC § 103 

The following is a quotation of 35 U.S.C. 103(a) which forms the basis for all 
obviousness rejections set forth in this Office action: 

(a) A patent may not be obtained though the invention is not identically disclosed or described as set forth in 
section 102 of this title, if the differences between the subject matter sought to be patented and the prior art are 
such that the subject matter as a whole would have been obvious at the time the invention was made to a person 
having ordinary skill in the art to which said subject matter pertains. Patentability shall not be negatived by the 
manner in which the invention was made, 

1 . Claims 1-5, 7, 9-13, 15, and 17-19, are rejected under 35 U.S.C. 103(a) as being 

unpatentable over Angelo (5,944,821) in view of Arbaugh and. 

In reference to claim 7, Angelo discloses a system that comprises a central processing 

unit (CPU: part 100 Fig. 1 in combination with column 6 lines 8-13) and an operating system 

(OS), the CPU having a software identity register (Fig. 2 in combination with column 9 lines 35- 

38), a method for booting the operating system. The secure location is memory and therefore 
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performs the same function as the register of the software identity register. Furthermore Angelo 
discloses setting the software identity register to a result of the computed cryptographic function 
(Fig. 3 and Fig. 4). 

However, Angelo does not expressly disclose computing a cryptographic function of at 
least a portion of the operating system and setting the software identity register to a result of the 
computed cryptographic function. 

Arbaugh discloses a system that verifies the kernel (operating system) by calculating the 
cryptographic hash of the operating system level (page 4 section 3.2.1 paragraph 2 in 
combination with section 3.2.2 paragraph 4). The cryptographic hash is the identity of the 
operating system since it is used to verify the integrity of the system. 

At the time the invention was made, it would have been obvious to a person of ordinary 
skill in the art to calculate the cryptographic hash of the operating system as in Arbaugh in the 
system of Angelo. One of ordinary skill in the art would have been motivated to do this because 
calculating the cryptographic hash function is used to calculate the integrity of a function a 
system is then said to posses integrity, without integrity no system can be made secure (Arbaugh 
Introduction). 

In reference to claim 2, Angelo discloses further a method comprising defining a secure 
storage space, access to which is based in part on the result set in the software identity register 
(column 9 lines 12-25). The integrity of the hash table is verified by the table hash value stored 
in the SMM memory. 

In reference to claims 3 and 77, Angelo discloses further a system that comprises a 
central processing unit (CPU: part 100 Fig. 1 in combination with column 6 lines 8-13) and an 
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operating system (OS), the CPU having a software identity register (Fig. 2 in combination with 
column 9 lines 35-38). The software identity register is a register that stores the identity of 
related software. A register is a high-speed memory within a microprocessor used to hold data. 
Angelo discloses setting the software identity register to a result of the computed cryptographic 
function (Fig. 3 and Fig. 4). Angelo discloses further a system wherein in an event that the 
atomic operation completes correctly, the software identity register contains the identity of the 
operating system (column 10 lines 16-28) and in an event that the atomic operation fails to 
complete correctly, the software identity register contains a value other than the identity of the 
operating system; and examining a content of the software identity register to verify the identity 
of the operating system (column 10 lines 39-65). The hash value can be deleted; this would be 
setting the value to something other than the correct hash value. The user is also given a choice 
to update the value and put in a value that is different from the correct hash value. 

However Angelo does not expressly disclose the identity of the software being an identity 
of the operating system. 

Arbaugh discloses a system that verifies the kernel (operating system) by calculating the 
cryptographic hash of the operating system level (page 4 section 3.2. 1 paragraph 2 in 
combination with section 3.2.2 paragraph 4). The cryptographic hash is the identity of the 
operating system since it is used to verify the integrity of the operating system. The system of 
Arbaugh also expressly discloses a system for loading the operating system (Figure 3). 

At the time the invention was made, it would have been obvious to a person of ordinary 
skill in the art to calculate the cryptographic hash of the operating system as in Arbaugh in the 
system of Angelo. One of ordinary skill in the art would have been motivated to do this because 
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calculating the cryptographic hash function is used to calculate the integrity of a function a 
system is then said to posses integrity, without integrity no system can be made secure (Arbaugh 
Introduction). 

In reference to claims 4, 9, 10, 12, 17, and 18, the identity comprises a public key of a 
correctly signed block of code from the operating system, and examining a content of the 
software identity register comprises verifying a signature of the signed block of code against the 
public key (Section 3.2.2 paragraph 2 Arbaugh). 

At the time the invention was made, it would have been obvious to a person of ordinary 
skill in the art to calculate the cryptographic hash of the operating system as in Arbaugh in the 
system of Angelo. One of ordinary skill in the art would have been motivated to do this because 
calculating the cryptographic hash function is used to calculate the integrity of a function a 
system is then said to posses integrity, without integrity no system can be made secure (Arbaugh 
Introduction). 

In reference to claims 7 and 15, that further comprises the authentication of additional 
blocks of code. 

Arbaugh teaches authenticating sections of code using a signature (page 4 Section 3.2.2 
paragraph 2). 

At the time the invention was made, it would have been obvious to a person of ordinary 
skill in the art to calculate the cryptographic hash of the operating system as in Arbaugh in the 
system of Angelo. One of ordinary skill in the art would have been motivated to do this because 
calculating the cryptographic hash function is used to calculate the integrity of a function a 
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system is then said to posses integrity, without integrity no system can be made secure (Arbaugh 
Introduction). 

In reference to claim 19, Angelo teaches a system that includes a CPU (part 100 Fig. 1 in 
combination with column 6 lines 8-13) and an operating system (OS), the CPU having a software 
identity register (Fig. 2 in combination with column 9 lines 35-38). In addition, Angelo discloses 
a system wherein in an event that the atomic operation completes correctly, the software identity 
register contains the identity of the operating system (column 10 lines 16-28) and in an event that 
the atomic operation fails to complete correctly, the software identity register contains a value 
other than the identity of the operating system; and examining a content of the software identity 
register to verify the identity of the operating system (column 10 lines 39-65). The hash value 
can be deleted; this would be setting the value to something other than the correct hash value. 
The user is also given a choice to update the value and put in a value that is different from the 
correct hash value. 

However, Angelo does not expressly disclose having a pair of private and public keys 
and a software identity register that holds an identity of the operating system. The identity of the 
software created in Angelo is not expressly disclosed as the identity of the OS containing the and 
signing the OS certificate using the CPU private key. 

Arbaugh discloses a system that verifies the kernel (operating system) by calculating the 
cryptographic hash of the operating system level (page 4 section 3.2.1 paragraph 2 in 
combination with section 3.2.2 paragraph 4). The cryptographic hash is the identity of the 
operating system since it is used to verify the integrity of the operating system. Arbaugh also 
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teaches the use of digital signatures and public key certification, therefore the use of private and 
public keys (page 4 section 3.2.1 paragraph 1). 

At the time the invention was made, it would have been obvious to a person of ordinary 
skill in the art to calculate the cryptographic hash of the operating system as in Arbaugh in the 
system of Angelo. One of ordinary skill in the art would have been motivated to do this because 
calculating the cryptographic hash function is used to calculate the integrity of a function a 
system is then said to posses integrity, without integrity no system can be made secure (Arbaugh 
Introduction). 

In reference to claims 5 and 73 are rejected as in rejection for claims 3 and 1 1 . 

Angelo discusses a hash value generated by an integrity assessment code that is specific 
to a given software application although the disclosed embodiment of the invention utilizes a 
hash table 206 containing hash values generated by a secure hash algorithm 208, it is 
contemplated that many types of modification detection codes could be utilized. Of importance 
to the invention is that each piece of software to be tracked has a corresponding and fairly 
unique value that represents the unaltered state of the software, and that this value be stored in a 
secure memory location (Fig. 3). 

2. Claims 22, 25-26, 30-38, 40-41, 43-54, 56-58, 69, 72-73, and 75-76 are rejected under 
35 U.S.C. 103(a) as being unpatentable over Ban* (6,189,100 Bl) in view of Arbaugh and 
Angelo (5,944,821). 

In reference to claims 22, 25, 30, 31, 32, 34, 35, 38, 40, 43, 45, 48-54, 56-58, 69, 73, and 
76, Barr suggests method for establishing a chain of trust between a subscriber unit and a content 
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provider, the subscriber unit having a central processing unit (CPU) and an operating system 
(OS), the CPU having a pair of private and public keys (column 9 lines 10-24), a manufacturer 
certificate supplied by a manufacturer of the CPU (column 9 lines 50-55), and a software identity 
register that holds an identity of the operating system (column 9 lines 10-23), the method 
comprising: submitting a request from the subscriber unit to the content provider, the request 
specifying a particular content (Fig. 7 A); generating, at the content provider, a challenge nonce 
(Fig. 7 A); returning the challenge nonce from the content provider to the subscriber unit (Fig. 
7A); forming, at the subscriber unit, an OS certificate containing the identity from the software 
identity register, information describing the operating system, the challenge nonce, and the CPU 
public key and signing the OS certificate using the CPU private key (column 9 lines 10-23); 
passing the OS certificate and the CPU manufacturer certificate from the subscriber unit to the 
content provider (column 9 lines 50-55); and evaluating, at the content provider, the OS 
certificate and the CPU manufacturer at the content provider to determine whether to reject or 
fulfill the request (column 9 lines 50-55 in combination with column 8 lines 17-24). The 
examiner defines a software identity register as a register that stores the identity of related 
software. A register is a high-speed memory within a microprocessor used to hold data. Ban* 
discloses a password that is encrypted and stored in a secure location (column 7 lines 59-67). 
The secure location is memory and therefore performs the same function of storing data as the 
register of the software identity register. The speed with which the data is to be retrieved 
depends on the design. 

Barr does not expressly disclose the software identity being calculated and stored. 
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Arbaugh discloses a system that verifies the kernel (operating system) by calculating the 
cryptographic hash of the operating system level (page 4 section 3.2. 1 paragraph 2 in 
combination with section 3.2.2 paragraph 4). The cryptographic hash is the identity of the 
operating system since it is used to verify the integrity of the operating system. Arbaugh also 
teaches the use of digital signatures and public key certification, therefore the use of private and 
public keys (page 4 section 3.2.1 paragraph 1). 

At the time the invention was made, it would have been obvious to a person of ordinary 
skill in the art to calculate the cryptographic hash of the operating system as in Arbaugh in the 
system of Barr. One of ordinary skill in the art would have been motivated to do this because 
calculating the cryptographic hash function is used to calculate the integrity of a function a 
system is then said to posses integrity, without integrity no system can be made secure (Arbaugh 
Introduction). 

In addition, Angelo discloses a system wherein in an event that the identity of the 
operating system is stored in the form of a hash value in a hash table (column 10 lines 16-28). 

At the time the invention was made, it would have been obvious to a person of ordinary 
skill in the art to update the hash value as described by Angelo in the system described by Barr. 
One of ordinary skill in the art would have been motivated to do this because trusted software 
may become vulnerable to attack and can no longer be relied upon to perform the trusted 
operation, recalculating the hash value and updating the hash table will revalidate the trusted 
softwar/e or reconfigure the integrity assessment (Angelo column 4 lines 17-24). 

In reference to claim 26, Arbaugh discloses a system that verifies the kernel (operating 
system) by calculating the cryptographic hash of the operating system level (page 4 section 3.2. 1 
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paragraph 2 in combination with section 3.2.2 paragraph 4). The cryptographic hash is the 
identity of the operating system since it is used to verify the integrity of the operating system. 
Arbaugh also teaches the use of digital signatures and public key certification, therefore the use 
of private and public keys (page 4 section 3.2.1 paragraph 1). 

At the time the invention was made, it would have been obvious to a person of ordinary 
skill in the art to calculate the cryptographic hash of the operating system as in Arbaugh in the 
system of Barr. One of ordinary skill in the art would have been motivated to do this because 
calculating the cryptographic hash function is used to calculate the integrity of a function a 
system is then said to posses integrity, without integrity no system can be made secure (Arbaugh 
Introduction). 

In reference to claim 36, the identity comprises a digital signature on a block of code 
from the operating system (column 6 lines 37-39). 

In reference to claim 33, wherein forming a generator key and generating a storage key 
comprises creating a storage key SK using the formula SK = SHA(CPU-specific secret, OS- 
specific data, seed). Angelo suggests the calculation of a hash value from a hash algorithm (Fig. 
2 in combination with Fig. 3). 

In reference to claim 37 is rejected as in rejection for claim 35. 

Barr does not expressly disclose the operating system's identity comprising a hash digest 
of a block of code from the operating system, and examining a content of the software identity 
register comprises hashing the block of code. 

Angelo discusses a hash value generated by an integrity assessment code that is specific 
to a given software application although the disclosed embodiment of the invention utilizes a 



Application/Control Number: 09/266,207 Page 12 

Art Unit: 2135 

hash table 206 containing hash values generated by a secure hash algorithm 208, it is 
contemplated that many types of modification detection codes could be utilized. Of importance 
to the invention is that each piece of software to be tracked has a corresponding and fairly 
unique value that represents the unaltered state of the software, and that this value be stored in a 
secure memory location (Fig. 3). 

At the time the invention was made, it would have been obvious to a person of ordinary 
skill in the art to calculate the hash value as an identity and examine the software integrity using 
the hash value as disclosed by Angelo in the system disclosed by Barr. One of ordinary skill in 
the art would have been motivated to do this because it is intended to be computationally 
infeasible to modify data so as to preserve a specific modification detection code value. 

In reference to claims 41, 44, 46, 47, and 75, Angelo teaches a system that includes a 
CPU (part 100 Fig. 1 in combination with column 6 lines 8-13) and an operating system (OS), 
the CPU having a software identity register (Fig. 2 in combination with column 9 lines 35-38). 
In addition, Angelo discloses a system wherein in an event that the atomic operation completes 
correctly, the software identity register contains the identity of the operating system (column 10 
lines 16-28) and in an event that the atomic operation fails to complete correctly, the software 
identity register contains a value other than the identity of the operating system; and examining a 
content of the software identity register to verify the identity of the operating system (column 10 
lines 39-65). The hash value can be deleted; this would be setting the value to something other 
than the correct hash value. The user is also given a choice to update the value and put in a value 
that is different from the correct hash value. 
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At the time the invention was made, it would have been obvious to a person of ordinary 
skill in the art to calculate the hash value as an identity and examine the software integrity using 
the hash value as disclosed by Angelo in the system disclosed by Barr. One of ordinary skill in 
the art would have been motivated to do this because it is intended to be computationally 
infeasible to modify data so as to preserve a specific modification detection code value. 

However, Angelo does not expressly disclose having a pair of private and public keys 
and a software identity register that holds an identity of the operating system. The identity of the 
software created in Angelo is not expressly disclosed as the identity of the OS containing the and 
signing the OS certificate using the CPU private key. 

Arbaugh discloses a system that verifies the kernel (operating system) by calculating the 
cryptographic hash of the operating system level (page 4 section 3.2. 1 paragraph 2 in 
combination with section 3.2.2 paragraph 4). The cryptographic hash is the identity of the 
operating system since it is used to verify the integrity of the operating system. Arbaugh also 
teaches the use of digital signatures and public key certification, therefore the use of private and 
public keys (page 4 section 3.2. 1 paragraph 1). 

At the time the invention was made, it would have been obvious to a person of ordinary 
skill in the art to calculate the cryptographic hash of the operating system as in Arbaugh in the 
system of Barr. One of ordinary skill in the art would have been motivated to do this because 
calculating the cryptographic hash function is used to calculate the integrity of a function a 
system is then said to posses integrity, without integrity no system can be made secure (Arbaugh 
Introduction). 
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In reference to claim 72, the identity comprises a public key of a correctly signed block 
of code from the operating system, and examining a content of the software identity register 
comprises verifying a signature of the signed block of code against the public key (Section 3.2.2 
paragraph 2 Arbaugh). 

At the time the invention was made, it would have been obvious to a person of ordinary 
skill in the art to calculate the cryptographic hash of the operating system as in Arbaugh in the 
system of Barr. One of ordinary skill in the art would have been motivated to do this because 
calculating the cryptographic hash function is used to calculate the integrity of a function a 
system is then said to posses integrity, without integrity no system can be made secure (Arbaugh 
Introduction). 

3. Claim 6, 8, 14, 16, and 21 are rejected under 35 U.S.C. 103(a) as being unpatentable 
over Angelo and Arbaugh as applied to claims 3, 11, 19 are respectively above, and further in 
view of Sadowsky et al (6,230,285 Bl). 

In reference to claims 6, 8, 14, and 16, Angelo does not expressly disclose maintaining a 
boot log. 

Sadowsky discloses maintaining a boot log (Fig 4). Further Sadowsky suggest the boot 
file comprising appending at least a portion of the identity to a boot log (column 4 lines 65 and 

66). 

At the time the invention was made, it would have been obvious to a person of ordinary 
skill in the art to append the identity to the boot log of Sadowsky in the system of Angelo. One 
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of ordinary skill in the art would have been motivated to do this because it will show the cause of 
boot failure (column 5 lines 12-15). 

In reference to claims 21, the method wherein creating an identity of the OS comprises 
forming the OS certificate with one or more items from a boot log containing identities of 
software components that are executing on the CPU. The boot log discussed by Sadowsky 
contains information such as the device driver and executables (column 4 lines 65 and 66). This 
information is shared with the certificate information suggested by Barr. 

4. Claim 23, 24, 39, 42, 55, and 59-62, and 71 are rejected under 35 U.S.C. 103(a) as being 
unpatentable over Barr, Arbaugh, and Angelo as applied to claims 22, 35, and 56 respectively 
above, and further in view of Sadowsky et al (6,230,285 Bl). 

In reference to claims 24, 39, 42, 55, 59-62, Barr does not expressly disclose maintaining 
a boot log. 

Sadowsky discloses maintaining a boot log (Fig 4). Further Sadowsky suggest the boot 
file comprising appending at least a portion of the identity to a boot log (column 4 lines 65 and 
66). 

At the time the invention was made, it would have been obvious to a person of ordinary 
skill in the art to append the identity to the boot log of Sadowsky in the system of Barr. One of 
ordinary skill in the art would have been motivated to do this because it will show the cause of 
boot failure (column 5 lines 12-15). 

In reference to claims 23, and 71, the method wherein creating an identity of the OS 
comprises forming the OS certificate with one or more items from a boot log containing 
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identities of software components that are executing on the CPU. The boot log discussed by 
Sadowsky contains information such as the device driver and executables (column 4 lines 65 and 
66). This information is shared with the certificate information suggested by Ban*. 

5. Claims 20 is rejected under 35 U.S.C. 103(a) as being unpatentable over Angelo and 
Arbaugh as applied to claims 19 above, and further in view of LeBourgeois (6,026,166). 

LeBourgeois further suggests submitting the signed software identity register (the identity 
of the user) over a network to a third party to prove an identity of the operating system to the 
third party (Fig 3A and Fig. 3B). 

At the time the invention was made, it would have been obvious to a person of ordinary 
skill in the art to bind the identification of the device drive to the signature of the certificate as in 
LeBourgeois in the system of Angelo. One of ordinary skill in the art would have been 
motivated to do this because it is useful in ensuring that digital products are authorized for use on 
only one machine (column 3 lines 21-23). 

6. Claims 63-68, 70, 74, and 77 are rejected under 35 U.S.C. 103(a) as being unpatentable 
over Barr, Arbaugh, and Angelo as applied to claims 56, 73, 69, and 76 above, and further in 
view of LeBourgeois (6,026,166). 

In reference to claims 63 and 64, Barr does not expressly disclose the certificate 
containing the identities of the device drivers. 
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LeBourgeois discloses the digital certification method where the signature is dependent 
on the user identity (column 3 lines 54-57). In this case the user would be the device driver of 
the CPU. 

At the time the invention was made, it would have been obvious to a person of ordinary 
skill in the art to bind the identification of the device drive to the signature of the certificate as in 
LeBourgeois in the system of Barr. One of ordinary skill in the art would have been motivated 
to do this because it is useful in ensuring that digital products are authorized for use on only one 
machine (column 3 lines 21-23). 

In reference to claim 65 and 66, LeBourgeois further discloses submitting, by the user 
computer, a request to the third party (the certificate server) for access to specific content; 
evaluating, by the third party, whether to permit access based on the level of trust associated with 
the user computer (Fig. 3B). 

At the time the invention was made, it would have been obvious to a person of ordinary 
skill in the art to send the request to a certificate server for access to specific content as disclosed 
by LeBourgeois in the system of Barr. One of ordinary skill in the art would have been 
motivated to do this because the certificate server will prevent an imposter from creating a 
message purportedly from the original sender (column 1 lines 22-59) 

In reference to claims 67 and 68, the access comprises transmitting, from the third party 
(the certificate server), a storage key for the specific content to the user computer through the 
secure connection (the connection between the merchant and the certificate server), wherein the 
specific content was previously stored on the user computer (Fig 3 A and 3B). The specific 
content was obtained outside the secure connection (the user system; Fig. 3 A). 



Application/Control Number: 09/266,207 Page 1 8 

Art Unit: 2135 

In reference to claims 70, 74, and 77, LeBourgeois further suggests submitting the signed 
software identity register (the identity of the user) over a network to a third party to prove an 
identity of the operating system to the third party (Fig 3 A and Fig. 3B). 

7. Claims 27-29 are rejected under 35 U.S.C. 103(a) as being unpatentable over Barr, 
Arbaugh, and Angelo as applied to claim 22 above, and further in view of Barlow et al (6, 038, 
551). 

Barr discloses the use of certificates for the operating system, however does not expressly 
disclose the use of a manufacturing certificate. 

Barlow discloses the use of a manufacturing certificate to verify the manufacturer and 
therefore whether to trust the manufacturer (column 8 line 66 to column 9 line 20). 

At the time the invention was made, it would have been obvious to a person of 
ordinary skill in the art to compare the manufacturer certificate and the operating system 
certificate. One of ordinary skill in the art would have been motivated to do this because to 
prevent possible covert attacks from malicious software applications which attempt to gain 
unauthorized access to resources on the IC card (column 8 line 66 to column 9 line 3). 

Conclusion 

Any inquiry concerning this communication or earlier communications from the 
examiner should be directed to Paula W Klimach whose telephone number is (703) 305-8421. 
The examiner can normally be reached on Mon to Thr 9:30 a m to 5:30 p.m. 
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If attempts to reach the examiner by telephone are unsuccessful, the examiner's 
supervisor, Kim Vu can be reached on (703) 305-4393. The fax phone number for the 
organization where this application or proceeding is assigned is 703-872-9306. 

Information regarding the status of an application may be obtained from the Patent 
Application Information Retrieval (PAIR) system. Status information for published applications 
may be obtained from either Private PAIR or Public PAIR. Status information for unpublished 
applications is available through Private PAIR only. For more information about the PAIR 
system, see http://pair-direct.uspto.gov. Should you have questions on access to the Private PAIR 
system, contact the Electronic Business Center (EBC) at 866-217-9197 (toll-free). 



PWK 

Thursday, July 15, 2004 




